Step 3: Redirect the Application to SecureAuth®
SecureAuth has the unique ability to become the authentication service without modifying your application.
Integrate your application in hours
The key to the SecureAuth solution is its ability to abstract the authentication process from your application. SecureAuth utilizes native .NET target/redirect authentication methodologies (documented in this Microsoft tech note, titled Forms Authentication Across Applications).
ASP.NET supports forms authentication in a distributed environment, either across applications on a single server or in a Web farm. SecureAuth enacts the following logic:
• Inspects if users has been authenticated
• Redirects users lacking session credential
• Pperforms bi-lateral, secure authentication
• Creates a Microsoft cross-platform session credential
• Returns users to target application
The key to the solution is to utilze the forms section in target application's web.config to redirect
<forms loginUrl="https://www.companyABC.com/SecureAuth/login.aspx" name=".ASPXFORMSAUTH" protection="All" path="/" timeout="30"/>
SecureAuth is designed to integrate into standard ASP.NET infrastructure, thereby taking advantage of cross-application authentication. This functionality not only works for an ASP.NET application, but also for Microsoft’s off-the-shelf products, including Microsoft SharePoint (WSS 3.0) and Microsoft OutlookWeb Access (OWA).
Estimated Deployment Time:1-2 hours by ASP.NET programmer
Benefit:
• SecureAuth is installable by IIS programmers/admins
• No special crypto experience is needed.
• No modification of “target application”
| <-Step 2. Connect to Datastore |